This is an automated email from the ASF dual-hosted git repository.
cwylie pushed a commit to branch 0.22.0
in repository https://gitbox.apache.org/repos/asf/druid.git
The following commit(s) were added to refs/heads/0.22.0 by this push:
new b236903 dependency check with inhert instead of aggregate (#11709)
(#11712)
b236903 is described below
commit b2369037b01485ee6d230db7b9aece244a655155
Author: Clint Wylie <[email protected]>
AuthorDate: Wed Sep 15 12:48:17 2021 -0700
dependency check with inhert instead of aggregate (#11709) (#11712)
---
.travis.yml | 2 +-
pom.xml | 4 ----
2 files changed, 1 insertion(+), 5 deletions(-)
diff --git a/.travis.yml b/.travis.yml
index d91aab2..dc995cd 100644
--- a/.travis.yml
+++ b/.travis.yml
@@ -725,7 +725,7 @@ jobs:
stage: cron
install: skip
script: |-
- ${MVN} dependency-check:purge dependency-check:aggregate -pl
'!integration-tests' || { echo "
+ ${MVN} dependency-check:purge dependency-check:check || { echo "
The OWASP dependency check has found security vulnerabilities. Please
use a newer version
of the dependency that does not have vulnerabilities. To see a report
run
diff --git a/pom.xml b/pom.xml
index 908abaf..8c6b842 100644
--- a/pom.xml
+++ b/pom.xml
@@ -1493,7 +1493,6 @@
<groupId>org.owasp</groupId>
<artifactId>dependency-check-maven</artifactId>
<version>6.0.3</version>
- <inherited>false</inherited>
<configuration>
<failBuildOnCVSS>7</failBuildOnCVSS>
<skipProvidedScope>true</skipProvidedScope>
@@ -1505,9 +1504,6 @@
</configuration>
<executions>
<execution>
- <goals>
- <goal>aggregate</goal>
- </goals>
<phase>none</phase> <!-- TODO: Consider enabling so
part of dev flow instead of just CI -->
</execution>
</executions>
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
